Merge pull request #649 from snyk/fix/update-lodash

fix: update vulnerable lodash
snyk · Jul 10, 2019 · 84f53bd · 84f53bd
2 parents 1321ec5 + 8ebdc1a
commit 84f53bd
Show file tree

Hide file tree

Showing 2 changed files with 3 additions and 7 deletions.
diff --git a/.snyk b/.snyk
@@ -16,8 +16,4 @@ ignore:
     - update-notifier > boxen > term-size > execa:
         reason: None given
         expires: '2019-05-31T17:15:04.209Z'
-  SNYK-JS-LODASH-450202:
-    - '*':
-        reason: No new version available yet
-        expires: '2019-08-01T12:07:27.178Z'
 patch: {}
diff --git a/package.json b/package.json
@@ -62,7 +62,7 @@
     "git-url-parse": "11.1.2",
     "glob": "^7.1.3",
     "inquirer": "^6.2.2",
-    "lodash": "^4.17.11",
+    "lodash": "^4.17.13",
     "needle": "^2.2.4",
     "opn": "^5.5.0",
     "os-name": "^3.0.0",
@@ -74,10 +74,10 @@
     "snyk-go-plugin": "1.10.2",
     "snyk-gradle-plugin": "2.12.5",
     "snyk-module": "1.9.1",
-    "snyk-mvn-plugin": "2.3.0",
+    "snyk-mvn-plugin": "2.3.1",
     "snyk-nodejs-lockfile-parser": "1.13.0",
     "snyk-nuget-plugin": "1.10.0",
-    "snyk-php-plugin": "1.6.2",
+    "snyk-php-plugin": "1.6.3",
     "snyk-policy": "1.13.5",
     "snyk-python-plugin": "1.10.2",
     "snyk-resolve": "1.0.1",